package com.cards_game.filter;

import java.io.IOException;
import java.io.PrintWriter;

import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.springframework.web.filter.OncePerRequestFilter;

public class LoginFilter extends OncePerRequestFilter {
	
	private String exceptional;
	
	public synchronized String getExceptional() {
		return exceptional;
	}
	public synchronized void setExceptional(String exceptional) {
		this.exceptional = exceptional;
	}
	
	@Override
	protected void doFilterInternal(HttpServletRequest request,
			HttpServletResponse response, FilterChain filterChain)
					throws ServletException, IOException {
		// 不过滤的uri
		String[] notFilter = getExceptional().split(",");
		// 请求的uri
		String uri = request.getRequestURI();
		
		String suffix=uri.substring(uri.lastIndexOf("/"), uri.length());
		// 是否过滤
		boolean doFilter = true;
		for (String s : notFilter) {
			if (s.equals(suffix)) {
				// 如果uri中包含不过滤的uri，则不进行过滤
				doFilter = false;
				break;
			}
		}
		String basePath =request.getContextPath();
		String prefix=basePath+"/resources";
		if(uri.contains(prefix)){
			doFilter = false;
		}
		if (doFilter) {
			// 执行过滤
			// 从session中获取登录者实体
			Object obj = request.getSession().getAttribute("userBean");
			if (null == obj) {
				// 如果session中不存在登录者实体，则弹出框提示重新登录
				// 设置request和response的字符集，防止乱码
				request.setCharacterEncoding("UTF-8");
				response.setCharacterEncoding("UTF-8");
				PrintWriter out = response.getWriter();
				String loginPage = "....";
				StringBuilder builder = new StringBuilder();
				builder.append("<script type=\"text/javascript\">");
				builder.append("alert('网页过期，请重新登录！');");
				builder.append("window.top.location.href='");
				builder.append(loginPage);
				builder.append("';");
				builder.append("</script>");
				out.print(builder.toString());
//				request.getRequestDispatcher("login.jsp").forward(request, response);  
				response.sendRedirect("login.jsp");
			} else {
				// 如果session中存在登录者实体，则继续
				filterChain.doFilter(request, response);
			}
		} else {
			// 如果不执行过滤，则继续
			filterChain.doFilter(request, response);
		}

	}

}
